Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json)
Hash identifier: h1mbSxlVD/kMSqrF01G9zMhVGuoNXIufZ7diYje5G6M=
Subject key identifier: 55:4E:EB:60:D7:A6:EA:A4:28:B0:3E:B6:87:60:EF:47:C8:A0:D1:FD
Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Certificate serial: 0196760D04305FBDE23BC6C4F7A152AD43FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
Manifest number: 149F
Signing time: Sun 27 Apr 2025 07:01:26 +0000
Manifest this update: Sun 27 Apr 2025 07:01:26 +0000
Manifest next update: Mon 28 Apr 2025 07:01:26 +0000
Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: fcRIGAgK82z1o2boDgfXXdmzZZR3VTYaUXeG/RE7Od0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0d:04:30:5f:bd:e2:3b:c6:c4:f7:a1:52:ad:43:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Validity
Not Before: Apr 27 07:01:26 2025 GMT
Not After : Apr 28 07:01:26 2025 GMT
Subject: CN=554eeb60d7a6eaa428b03eb68760ef47c8a0d1fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d8:c3:70:76:95:bf:61:54:37:a7:79:7b:06:
e2:8d:78:be:8a:17:b6:2e:5f:de:fa:43:ea:d9:09:
89:c0:21:7a:4d:0b:da:fc:86:0e:c6:41:d0:e1:bd:
6d:8f:c8:54:8a:86:22:a3:cf:22:ca:4e:df:91:95:
d9:6f:b7:51:f8:88:48:e4:7c:79:b5:a7:e6:7f:9c:
f2:ca:9a:99:22:04:e5:f5:3d:aa:c3:21:ad:b2:5f:
4e:33:a2:ba:9f:13:0a:6f:df:0c:68:b3:6d:e2:ef:
50:87:b3:55:89:80:40:51:e4:f1:2b:ba:90:87:40:
4b:e1:f7:41:64:3d:2b:0f:ec:ac:46:b3:64:c6:13:
84:01:fc:19:e6:e4:6c:b2:b1:7b:65:6e:1f:c1:a1:
8e:6d:f8:65:9e:f1:79:7b:fe:92:7b:6b:a2:88:20:
70:81:37:f6:bd:be:88:b4:f1:8e:df:4c:9c:a0:2f:
d3:8d:e3:f3:3e:2b:ae:cb:ac:15:e9:bb:08:75:40:
9f:3d:f2:af:8c:89:95:7d:3a:ce:7f:b4:85:aa:91:
00:12:36:ec:8d:9a:c8:ee:18:e1:83:a4:07:7f:be:
74:8a:15:ba:02:1f:48:9a:10:16:89:86:b9:9a:f2:
28:bb:3c:81:03:1c:3c:60:f2:ee:e7:77:65:6d:61:
e0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:4E:EB:60:D7:A6:EA:A4:28:B0:3E:B6:87:60:EF:47:C8:A0:D1:FD
X509v3 Authority Key Identifier:
keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:87:66:78:ee:ce:60:1e:07:4a:9e:93:a6:c6:53:81:45:e4:
35:58:86:1b:03:b5:46:de:85:b4:b0:8a:41:d2:a7:fa:de:7c:
8d:f2:e5:7f:51:bd:17:0d:6c:6a:04:b8:9f:3f:b4:3b:49:31:
51:b9:03:7e:7c:4b:7d:47:4c:bc:4a:b8:ff:60:d8:bc:07:0e:
c2:ba:55:3b:9a:56:7e:9a:ca:e0:61:dc:60:f5:0a:19:f1:90:
38:2e:b7:d7:ab:42:08:fb:06:fa:b6:ed:cf:50:52:03:b0:f4:
3a:62:a7:23:4e:b4:eb:65:73:c9:7f:6d:14:47:b2:6a:34:0c:
63:9e:c5:89:94:0b:70:f3:47:8c:29:8c:97:2a:72:6e:db:c9:
ad:2b:21:aa:b6:57:bf:de:ff:ed:d5:f2:af:92:fb:51:52:e5:
43:6c:d4:26:74:40:eb:29:2f:3f:f3:8d:df:42:35:da:34:53:
29:01:5d:f7:26:e1:66:85:a8:16:4c:ad:ce:89:05:77:62:aa:
ed:da:ef:6e:23:85:14:90:45:ce:07:c7:e5:7d:d6:1c:14:28:
4f:48:5b:47:15:0f:2f:cf:77:74:b8:64:78:1c:8d:e3:78:c2:
48:c1:ff:e6:d2:82:77:76:be:78:23:58:1a:bc:80:1e:9c:04:
fb:e8:17:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DQQwX73iO8bE96FSrUP9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNzg1Y2I1ZmM2YjQwZmRmMTRmNzJhNmQyNWY0MTQzYzE3
YzMxN2MwHhcNMjUwNDI3MDcwMTI2WhcNMjUwNDI4MDcwMTI2WjAzMTEwLwYDVQQD
Eyg1NTRlZWI2MGQ3YTZlYWE0MjhiMDNlYjY4NzYwZWY0N2M4YTBkMWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9jDcHaVv2FUN6d5ewbijXi+ihe2
Ll/e+kPq2QmJwCF6TQva/IYOxkHQ4b1tj8hUioYio88iyk7fkZXZb7dR+IhI5Hx5
tafmf5zyypqZIgTl9T2qwyGtsl9OM6K6nxMKb98MaLNt4u9Qh7NViYBAUeTxK7qQ
h0BL4fdBZD0rD+ysRrNkxhOEAfwZ5uRssrF7ZW4fwaGObfhlnvF5e/6Se2uiiCBw
gTf2vb6ItPGO30ycoC/TjePzPiuuy6wV6bsIdUCfPfKvjImVfTrOf7SFqpEAEjbs
jZrI7hjhg6QHf750ihW6Ah9ImhAWiYa5mvIouzyBAxw8YPLu53dlbWHgjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVO62DXpuqkKLA+todg70fIoNH9MB8GA1UdIwQY
MBaAFEF4XLX8a0D98U9yptJfQUPBfDF8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9hZTM4NDAtN2RkYS00ODJlLWEyNGUt
ZTQ2ZWM1YjliMDZjLzEvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9hZTM4NDAtN2RkYS00ODJlLWEyNGUtZTQ2ZWM1YjliMDZj
LzEvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi4dmeO7O
YB4HSp6TpsZTgUXkNViGGwO1Rt6FtLCKQdKn+t58jfLlf1G9Fw1sagS4nz+0O0kx
UbkDfnxLfUdMvEq4/2DYvAcOwrpVO5pWfprK4GHcYPUKGfGQOC6316tCCPsG+rbt
z1BSA7D0OmKnI06062VzyX9tFEeyajQMY57FiZQLcPNHjCmMlypybtvJrSshqrZX
v97/7dXyr5L7UVLlQ2zUJnRA6ykvP/ON30I12jRTKQFd9ybhZoWoFkytzokFd2Kq
7drvbiOFFJBFzgfH5X3WHBQoT0hbRxUPL893dLhkeByN43jCSMH/5tKCd3a+eCNY
GryAHpwE++gX1Q==
-----END CERTIFICATE-----
Generated at Sun Apr 27 14:22:13 2025 by rpki-client